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(57) Abstract 



A method is provided for achieving admission control to a public connectionless packet network. This provides a method of access 
control which allows service differentiation in a form which permits a user to receive a quality of service guarantee which is better than 
a *'best effort" service. Each transmission by a user across the network includes a message sent to the user from the network. The 
message includes information about the priority level of the transmission, based on the user's contract with the network provider, and can 
subsequently be extracted by the network to determine how to handle the transmission, and to determine the resources available for future 
transmission requests. 
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RESOURCE RESERVATION 

TECHNICAL FIELD OF THE INV ENTION 

This invention relates to the field of resource 
reservation, and in particular to a method of 
5 controlling access to a communications network, and to 

a network using such a method. 
DESCRIPTION OF RELATED ART 

The Internet is a communications network which is 
becoming widely available. The Internet provides a 

10 "best effort" bearer service. That is, the user 

receives the best service available at the time he 
requests it, but no commitments are given to the user 
in terms of available bandwidth, transit delay, or 
packet loss. The Internet is particularly useful in 

15 data communications applications, but is of limited use 

for telecommunications applications which require 
guaranteed bandwidth availability, and specify maximum 
values for the transit delay and loss of data. The 
Internet cannot usually guarantee the required quality 

20 of service. 

One conventional way of achieving resource 
reservation, to be able to provide a required quality 
of service commitment, is to use connection states to 
store information in the network nodes about bandwidth, 

25 buffer parameters, connection identity and status. 

However, an advantage of the Internet is that it is a 
connectionless network, which therefore cannot use this 
technique without sacrificing the simplicity of the 
Internet . 

30 One conventional way of achieving bearer service 

differentiation, in* a connectionless network, is to use 
a set of priority bits in the packet header. However, 
in a public connectionless network, it is still 
necessary to control how many connections use the 

35 highest available priority. If every connection uses 

the highest available priority, the network can still 
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in effect only offer a best effort service to the 
users. 

A problem remains, therefore, as to how to control 
admission to the network. 
TECHNICAL FIELD OF THE INVENTION 

The present invention seeks to solve the problem 
of achieving admission control and resource reservation 
in a connectionless network. 

A further object of the invention is to provide a 
method of access control which, in preferred 
embodiments, allows service differentiation in a form 
which permits a user to receive a quality of service 
guarantee which is better than a *'best effort" service. 

According to the invention, each transmission by a 
user across the network includes a message sent to the 
user from the network. The message includes 
information about the priority level of the 
transmission, based on the user's contract with the 
network provider, and can subsequently be extracted by 
the network to determine how to handle the 
transmission . 

Thus, rather than rely on the network being able 
to detect the status of the connection, the relevant 
information is transmitted by the user with the data 
transmission, and can be extracted by tne network as 
required . 

For a better understanding of the present 
invention, and to show how it may be brought into 
effect, reference will now be made, by way of example, 
to the accompanying drawings. 
BRIEF DESCRIPTION OF DRAWINGS 

Figure 1 is a schematic representation of a 
network in accordance with the invention. 

Figure 2 illustrates the flow of signalling 
messages in accordance with the invention. 

Figure 3 is a flow chart indicating the steps 
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taken in a method in accordance with the invention. 
DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS 

Figure 1 represents a network in accordance with 
the invention. In Figure 1, a user at terminal A 
5 intends to send a message, in the form of data packets, 

to terminal B across the Internet. The Internet 
includes a large number of nodes, of which only a small 
number are shown in Figure 1 . These are designated 
real-time routers RR, while the node to which the 
10 terminal A is connected is designated the access router 

AR. 

Although the invention is described herein with 
reference to the Internet, it is applicable to any 
connectionless packet network, whether public or 

15 private. 

In accordance with preferred embodiments of the 
invention, the sender has a traffic contract with its 
network provider, under which a particular quality of 
service is guaranteed. This allows the network 

20 provider to offer service differentiation to users. 

Thus, users who are prepared to pay higher charges are 
able to guarantee access to higher bandwidths, or 
higher priority traffic handling. 

The flow of signalling messages during a data 

25 transmission will now be described with reference to 

Figure 2, while the steps taken in the access router AR 
will be described with reference to the flow, chart of 
Figure 3. 

When the sender wishes to initiate a data 
30 transmission, a user resource reservation request REQ-U 

is sent from the terminal A, ^.and received at the access 
router AR in step 1 of the method. The resource 
reservation request specifies the required bandwidth 
for the transmission, the required traffic class, the 
35 source address and the destination address. These 

parameters are thus set for the duration of the 
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trransmisslon at: "this st:age. 



In step 2 of the method, it is determined at the 
access router AR whether the resource reservation 
request passes the admission control. This admission 
control is performed in a generally conventional way, 
in that the required bandwidth specified in the 
resource reservation request is checked against the 
bandwidth available to that user, and in the system 
generally. If the resource reservation request does 
not pass the admission control, the request is denied. 

As described in more detail below, the information 
needed for admission control is not stored in the 
network on a per connection basis, but can be extracted 
by the network as required from messages associated 
with every transmission which gains access to the 
network. Thus, these messages must contain all 
information which is necessary to allow the network 
nodes to perform admission control and policing of the 
transmission as required. 

If the resource reservation request passes the 
admission control, the method passes to step 3. Here, 
the access router AR sends a network resource 
reservation request REQ-N across the Internet to the 
terminal B. Each node in the transmission path can 
perform resource reservation and admission control. If 
the required bandwidth is available across the network, 
an acknowledgement is sent from the terminal B to the 
access router AR, and received in step 4 of the method. 
As described above, it is assumed that the network 
is able to support resource reservation from end to 
end. However, it will be appreciated that the 
invention is equally applicable when resource 
reservation is only available over a specific network 
domain, covering only a part of the end to end path. 
In such a case, the reservation protocol is terminated 
the routers at the edges of that network domain. 
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Following receipt by the access router AR of the 
acknowledgement message, required information about the 
state of the connection is passed, in accordance with 
the invention, from the network to the user A in step 5 
of the method. Specifically, information about the 
resources allocated to the connection, and other 
connection parameters (for example those specified in 
the traffic contract) is sent from the access router AR 
to the sender A in a ticket message- The information 
in the ticket message is preferably protected by a 
digital signature, to prevent its alteration by the 
user A. 

Then, during transmission of the data across the 
network the ticket message is inserted into the data 
packet flow by the sender. The ticket message may be 
sent with every packet of the data flow, or may be 
inserted periodically. As a further alternative, if 
the network polices data flows on a sample basis, the 
ticket message may be included only when requested by 
the network. Any ticket message is received at the 
access router in step 6 of the method illustrated in 
Figure 3. The access router, and other nodes in the 
transmission path, can then use the ticket message for 
policing the packet flows, in step 7 of the method. 
Thus, if a packet flow seeks to use a particular 
priority level or bandwidth, without including a ticket 
message which authorises such use, the flow can be 
policed. 

The ticket message is then transmitted across the 
network with the data packet flow. Thus, the ticket 
message has a function which is similar in some ways to 
the priority bits which can be added to a packet header 
before transmission across a connectionless network. 
However, the ticket message used in accordance with the 
invention is determined by the network itself, so that 
it becomes possible to ensure that users receive a 
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service which is in accordance with their quality of 
service guarantees, and ensures that users cannot 
reserve high priority resources which go beyond those 
guaranteed . 

In one embodiment, the user must still set 
priority bits in a conventional way, but the ticket 
message, determined by the network and transmitted by 
the user with the data flow, states which priority 
levels may validly be set by the user for a particular 
data flow. 

As indicated in step 8 of the method illustrated 
in Figure 3, the network can use the ticket message at 
any time to extract information about the connection. 
For example, the ticket message may contain information 
about the allocated bandwidth, the priority level, the 
quality of service parameters, and the time of expiry 
thereof, amongst other things. Thus, this information 
does not need to be stored within the network on a per 
connection basis, but rather the network can remain 
connectionless. However, the network can obtain the 
information which it requires about all connections, in 
order to be able to calculate the total amount of 
resources which have been allocated in every priority 
level on every link in the network. This allows the 
network admission control function to determine whether 
a new resource reservation request can be accepted, or 
must be rejected. 

As an alternative to using the ticket messages in 
this way, the estimation of the resources already 
reserved can be achieved using a conventional method 
such as measuring the aggregate data flow. The ticket 
message may then only be used to request new 
reservations and to support policing. 

Further possible uses of the ticket messages 
transmitted in accordance with the invention are to 
support charging, for example by logging the tickets 
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for a data flow, or for net:work management purposes, 
for example using the periodic transmission and 
acknowledgement of the ticket message as an indication 
that a data channel is operational. 

A further advantage of the invention is that an 
operator can choose to run his network in a 
connectionless manner, as described herein, or in a 
connection oriented mode, using the information in the 
request and ticket messages to set up a connection 
state for the data flow. A single message, passing 
through several operator domains, can pass through 
networks operating in both modes. It may be 
advantageous to use a connection oriented mode in an 
access router to support charging, while the rest of 
the network operates in a connectionless manner. 

There is thus described a system which allows 
bearer service differentiation in a connectionless 
network . 
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CLAIMS 

1- A method of reserving network resources for a 
transmission from a first network user, the method 
comprising: 

receiving a resource reservation request from the 
first network user to initiate a reservation; 

confirming that the required resource is 
available; 

sending from the network to the first network user 
a message containing all necessary connection 
information; and 

allowing access to the network for a transmission 
from the first network user, the transmission including 
the message containing connection information. 

2. A method as claimed in claim 1, wherein the 
message containing connection information cannot be 
altered by the first network user. 

3. A method as claimed in claim 2, wherein the 
message containing connection information is protected 
by a digital signature. 

4. A method as claimed in claim 1, wherein the 
message containing connection information is used to 
police access to the network. 

5. A method as claimed in claim 1, wherein the 
message containing connection information includes 
information about a bandwidth allocated to the 
transmission, 

6. A method as claimed in claim 1, wherein the 
message containing connection information includes 
information about a priority level allocated to the 
transmission. 

7. A method as claimed in claim 1, wherein the 
message containing connection information includes 
information about a quality of service guarantee to the 
first network user. 

8. A method as claimed in claim 1, wherein the 
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message cont:aining connection information includes 
information about a time of expiry thereof. 

9. A method as claimed in claim 1, wherein the 
message containing connection information includes 

5 information about a source address of the transmission. 

10. A method as claimed in claim 1, wherein the 
message containing connection information includes 
information about a destination address of the 
transmission . 

1Q 11. A node for a communications network, 

comprising: 

means for receiving an access request from a user; 
means for determining whether resources are 
available for a received access request; 
15 means for transmitting to the user a message 

containing all necessary connection information, if 
resources are available; and 

means for restricting access to the network to 
allow access only to transmissions including an 
20 appropriate message containing connection information. 

12. A node for a communications network, as 
claimed in claim 11, comprising: 

means for .extracting data from messages containing 
connection information associated with respective 
25 transmissions; and 

means for using said data for determining whether 
resources are available for the received access 
request . 

13 . A method of achieving admission control in a 
30 network, the method comprising: 

receiving a res-:.urce reservation request from a 
user to initiate a reservation; 

' sending to the user a ticket message containing 
all necessary connection information; 
35 requiring a subsequent transmission from the user 

to return the ticket message; and 
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applying admission control on the basis of the 
content of the ticket message. 
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